[Bug 2405] New: Description of UseDNS option is not accurate
bugzilla-daemon at mindrot.org
bugzilla-daemon at mindrot.org
Thu May 28 17:56:17 AEST 2015
https://bugzilla.mindrot.org/show_bug.cgi?id=2405
Bug ID: 2405
Summary: Description of UseDNS option is not accurate
Product: Portable OpenSSH
Version: 6.8p1
Hardware: Other
OS: Linux
Status: NEW
Severity: enhancement
Priority: P5
Component: Documentation
Assignee: unassigned-bugs at mindrot.org
Reporter: jjelen at redhat.com
After releasing openssh-6.8 with new default "UseDNS no", some of our
users were surprised that they can't connect to their machines with
authorized keys limited to hostname, example:
'from="host.example.org" ssh-rsa ...' in ~/.ssh/authorized_keys
Manual page should state that this option turns off not only reverse
lookups (from manual page -- "look up the remote host name and check
that the resolved host name for the remote IP address maps back to the
very same IP address"), but all DNS functionality that is required for
some functions to work, for example above mentioned authorized_keys
based on hostname.
Based on Red Hat bugziila [1].
[1] https://bugzilla.redhat.com/show_bug.cgi?id=1225239
--
You are receiving this mail because:
You are watching the assignee of the bug.
More information about the openssh-bugs
mailing list